CVE-2017-7671

Опубликовано: 27 фев. 2018

Источник: debian

EPSS Низкий

Описание

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
trafficserver	fixed	7.1.2+ds-1		package
trafficserver	not-affected		wheezy	package

Примечания

https://github.com/apache/trafficserver/pull/1941

EPSS

Процентиль: 89%

0.0427

Низкий

Связанные уязвимости

CVE-2017-7671

CVSS3: 7.5

ubuntu

почти 8 лет назад

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

CVE-2017-7671

CVSS3: 7.5

nvd

почти 8 лет назад

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

GHSA-cp9g-xqrx-g4w7

CVSS3: 7.5

github

больше 3 лет назад

There is a DOS attack vulnerability in Apache Traffic Server (ATS) 5.2.0 to 5.3.2, 6.0.0 to 6.2.0, and 7.0.0 with the TLS handshake. This issue can cause the server to coredump.

EPSS

Процентиль: 89%

0.0427

Низкий